An independent researcher recently found multiple vulnerabilities plaguing a particular syringe pump. The pump is incapable of validating certificates, making it a good candidate for MiTM attacks, allowing threat actors to bypass any security measures in place and gain elevated privileges on it. Makers of the said smart pump, makers of the product, Smiths Medical, has announced that theyll be releasing version 1.6.1 of the device to address the vulnerabilities above. In the meantime, ICS-CERT advises users to take steps to lessen the possibility of exploitation by disconnecting the pump from the internet.”]
Source: https://blog.malwarebytes.com/security-world/2017/09/multiple-flaws-found-in-smart-syringe-pump/